Vulnerability in Cisco Adaptive_security_appliance_software
CVE-2017-6607
A vulnerability in the DNS code of Cisco ASA Software could allow an unauthenticated, remote attacker to cause an affected device to reload or corrupt the information present in the device's local DNS cache. The vulnerability is due to a f…
EPSS: 0.010 (77.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.7 (High). Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H.
Affected products
- Cisco Adaptive_security_appliance_software — versions 9.0.1, 9.0.2, 9.0.2.10
- N/a Cisco Asa Software — versions Cisco ASA Software
Weakness classification (CWE)
References
- psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
- psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
- psirt@cisco.com (vdb-entry, x_refsource_SECTRACK)
Frequently asked questions
- What is CVE-2017-6607?
- CVE-2017-6607 is a high-severity vulnerability in Cisco Adaptive_security_appliance_software, classified under CWE-399. CVSS score: 8.7/10. Published 2017-04-20.
- How severe is CVE-2017-6607?
- High severity. CVSS v3 base score is 8.7 out of 10.